- Description
- The web management interface in 3Com TippingPoint SMS Server before 2.2.1.4478 does not restrict access to certain directories, which might allow remote attackers to obtain potentially sensitive information such as configuration settings.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
- Hype score
- Not currently trending
- Comment
- -
- Impact
- -
- Solution
- -
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:3com:tippingpoint_sms_server:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8386EA42-F932-4562-A9AD-327BE51E2516",
"versionEndIncluding": "2.2.1.4477"
}
],
"operator": "OR"
}
]
}
]